Outages 40-hour Cloudflare outage: Tier 3 DC power failure exposes unknown software dependencies, triggers rethink "Dependencies shouldn’t have been so tight, should have failed more gracefully, and we should have caught them"
Microsoft Microsoft pledges a dramatic software security overhaul, as Amazon veteran shakes the tree Biggest overhaul of Redmond's security in 20 years sees promises of "code analysis [of] 100% of commercial product”, cryptographic keys to be kept in a hardened Azure HSM, more.
CISO As SEC’s SolarWinds charges reverberate, companies scrutinise cyber risk disclosures 'Do not state anything that is subjective and avoid adjectives (e.g., "state of the art," "mature," "advanced," "appropriate," "comprehensive," or "reasonable")' say experts.
OpenAI A bootleg API, AI’s RAM needs, cat prompts and GPU shortages: Lessons from scaling ChatGPT "Cache misses have this weird massive non-linear effect into how much work the GPUs are doing, because we suddenly need to start recomputing all this stuff."
cloud migration Cloud computing's biggest strength could be its biggest weakness Executives are getting more worried about the risk of being too dependent on one cloud. But the dominance of the cloud giants makes it hard to avoid.
SolarWinds SolarWinds sued by SEC over 2019 monster hack, CISO also charged with fraud, control failures SolarWinds’ poor controls... false and misleading statements and omissions, and the other misconduct... would have violated the federal securities laws even if SolarWinds had not experienced a major, targeted cybersecurity attack"
ERP Water company eyes clouds for ERP as well as rain, gears up for overhaul Cloud-based ERP and HR systems upgrade worth over £4 million is the plan for utility company.
MongoDB MongoDB’s CPO Sahir Azam on data sovereignty and empowering developers "I've very rarely seen so much industry traction on a big platform shift like this"
Citrix Citrix Bleed: Two ransomware groups now exploiting bug for initial access Here's what you need to do to reduce the threat posed by CVE-2023-4966. But don't delay.
AI Biden's AI Executive Order to create standards for identifying "AI-generated content and authenticating official content" Order also demands "strong new standards for biological synthesis screening" and follows UK concerns around
Members only AI OpenAI, peers warn in Red Team report that AI could support “misuse” of biology Report comes as nation states fret over risk, UK's PM says AI companies shouldn't "mark their own homework"
Dell Dell and Red Hat's "turnkey" new integrated offering goes GA Dell ramps up its "APEX" offering, lets customers configure hardware, patch firmware through OpenShift in jointly engineered new offering.
Members only AWS Andy Jassy on AWS’s slowdown and AI’s “three layers” “It's not all customers deciding to shut down workloads” says Amazon's CEO as cloud growth drops to 12% -- with the company saying customers are recognising that AI costs can also spiral.
News Zero day in free Roundcube webmail service exploited to target governments Despite the low sophistication of the group’s toolset, it is a threat to governments in Europe because... a significant number of internet-facing applications are not regularly updated although they are known to contain vulnerabilities.”
meta Zuck’s revenge: Facebook lives, Llama downloads hit 30m monthly, net revenues top $11.58 billion CapEx to hit up to $35 billion “with growth driven by investments in servers, including both non-AI and AI hardware
ransomware English-speaking ransomware group expanding ops, deploying diverse tools, threats Both blunt and more advanced social engineering approaches used for initial access; the group also has sophisticated hands-on-keyboards capabilities and a diverse toolset.
Members only data breaches Okta breach looks worse as BeyondTrust, Cloudflare, 1Password report impact, flag concerns Concern at IAM vendor Okta's response mounts as BeyondTrust details concerns, Cloudflare calls for customers to press harder on "further information regarding potential impact to your organization"
Microsoft Microsoft earnings: Five big takeaways Copilots are everywhere as part of Microsoft's "platform transition" in the new world of AI.
AI Alphabet, Microsoft earnings show AI rewriting cloud businesses AI, says Microsoft, is "redefining our role in business applications” with partners adding Copilots as a “process transformation layer" on top of existing systems.
AWS AWS promises European sovereign cloud – doesn’t say when, skimps on details Announcement leaves AWS lagging Azure and OCI - with Oracle already running sovereign infrastructure in Frankfurt and Madrid with “no backbone network connection to other cloud regions”
Members only Banking Endgame! Basel III rules put banking bosses on edge – IT impact also looms for CTOs Rules demand "a significant uplift in terms of new data sourcing... IT leadership will need to carefully manage cultural and technical integration between internal risk and compliance teams"
Matrix Matrix hits 115 million users, as founders look to add OpenID Connect, enterprise features Major overhaul of the open source communications protocol and standard looms, amid steady user base growth
ransomware Was this the most vanilla ransomware attack ever? "VPNs pose a threat to enterprise security. They create a path in the network perimeter and provide access to network resources after authentication..."